You must adhere to the following process when creating secrets for a Helm deployment:
- To create secrets for a blueprint, see Create secrets for an Ansible blueprint.
- Upload a copy of the Kubernetes configuration file to the Orchestrator. By default, the Kubernetes configuration file name is
kubeconfig
. To upload a copy of the Kubernetes configuration file to the Orchestrator, you must upload the configuration file as a secret file to the repository using the web user interface or the API. For more information about uploading a secret file to the repository, see Upload a secret file to the repository. For more information about using the API to upload a secret file, see the Dell Telecom Infrastructure Automation Suite API Guides. - If the secret file name is different to the default name, you can edit the file name by updating the
kube_config_file
field in theflask-bp-inputs.yaml
file. The following is an example of theflask-bp-inputs.yaml
file:
The following is an example of the Upload a secret file API request body:helm_installation_source: http://fileserver-svc/data/test/helm-v3.6.3-linux-amd64.tar.gz
chart_path: http://fileserver-svc/data/test/flask-api-server-0.1.0.tgz
kube_config_file: kubeconfig
helm_max_sleep_time: 250{ "Secrets": [ { "Key": "kubeconfig", "Value": "apiVersion: v1 \nclusters: \n- cluster: \n certificate-authority-data: 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 \n server: https://0.0.0.0:6443 \n name: default \ncontexts: \n- context: \n cluster: default \n user: default \n name: default \ncurrent-context: default \nkind: Config \npreferences: {} \nusers: \n- name: default \n user: \n client-certificate-data: LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS0tCk1JSUJrakNDQVRpZ0F3SUJBZ0lJT09teWRWU0RPUk13Q2dZSUtvWkl6ajBFQXdJd0pERWlNQ0FHQTFVRUF3d1oKY210bE1pMWpiR2xsYm5RdFkyRkFNVGN4TVRBek1ERXdNekFlRncweU5EQXpNakV4TkRBNE1qTmFGdzB5TlRBegpNakV4TkRBNE1qTmFNREF4RnpBVkJnTlZCQW9URG5ONWMzUmxiVHB0WVhOMFpYSnpNUlV3RXdZRFZRUURFd3h6CmVYTjBaVzA2WVdSdGFXNHdXVEFUQmdjcWhrak9QUUlCQmdncWhrak9QUU1CQndOQ0FBUTRjNFNyQVNLNGFOcDcKWmUwZEU0VURJRFc3NGdudnZvTmFLdmdqSCtxUjJFb1N5M3pMSFlCanI4Q1MzNDMxTkVxdEVYWHdVODYzYwo0VURFV3RVTm8wZ3dSakFPQmdOVkhROEJBZjhFQkFNQ0JhQXdFd1lEVlIwbEJBd3dDZ1lJS3dZQkJRVUhBd0l3Ckh3WURWUjBqQkJnd0ZvQVVtbWJKdjFwMVNNSnVzZEVCc0JZYmNPR2dFZ1F3Q2dZSUtvWkl6ajBFQXdJRFNBQXcKUlFJaEFMZ3l0YUo5THh6eUlZT0N6QTRCdVVMM1gxOGR0R1IyTFdVYUg3alIvZytmQWlCYll6VXZEY1QwNFdEaAphbENRZ2Z3YXdRazdMQ3VMeEM2ZUt6eFJzMWNqN0E9PQotLS0tLUVORCBDRVJUSUZJQ0FURS0tLS0tCi0tLS0tQkVHSU4gQ0VSVElGSUNBVEUtLS0tLQpNSUlCZWpDQ0FSK2dBd0lCQWdJQkFEQUtCZ2dxaGtqT1BRUURBakFrTVNJd0lBWURWUVFEREJseWEyVXlMV05zCmFXVnVkQzFqWVVBeE56RXhNRE13TVRBek1CNFhEVEkwTURNeU1URTBNRGd5TTFvWERUTTBNRE14T1RFME1EZ3kKTTFvd0pERWlNQ0FHQTFVRUF3d1pjbXRsTWkxamJHbGxiblF0WTJGQU1UY3hNVEF6TURFd016QlpNQk1HQnlxRwpTTTQ5QWdFR0NDcUdTTTQ5QXdFSEEwSUFCSmVBc1RrUldETHRSUXBPYzZndWhXKzgzZWt2elVGV2tLcCsrOGgrCkhJend6ZHpKd0RCZEIxMnIvZnV0c1JURFhHVG8rQVFDZGNmVnlhTmt0emdsajV1alFqQkFNQTRHQTFVZER3RUIKL3dRRUF3SUNwREFQQmdOVkhSTUJBZjhFQlRBREFRSC9NQjBHQTFVZERnUVdCQlNhWnNtL1duVkl3bTZ4MFFHdwpGaHR3NGFBU0JEQUtCZ2dxaGtqT1BRUURBZ05KQURCR0FpRUFtNm0yd0tlWHlQM0NsSFZQdmw4Qlo2akMxTlhYCkxhNGhvQk1vak1XbFZhSUNJUURJVFV0R1dDb1FxbllRNVY0UkNneEQybjhRVG4xUlovbFdWcFRpOVBYc0J3PT0KLS0tLS1FTkQgQ0VSVElGSUNBVEUtLS0tLQo= \n client-key-data: LS0tLS1CRUdJTiBFQyBQUklWQVRFIEtFWS0tLS0tCk1IY0NBUUVFSUI5dTBEUng3dVhWMlg0UFdOUy9SYVc2TDVEdUZDRFJ4OXlscmdKdnpLc3NvQW9HQ0NxR1NNNDkKQXdFSG9VUURRZPRXF3RWl1R2phZTJYdEhST0ZBeUExdStJSjc3NkRXaXI0SXgvcWtkaEtFc3Q4eXgyQQpZNi9Ba3QrTjlUUktyUkYxNlZlMWxQT3QzT0ZBeEZyVkRRPT0KLS0tLS1FTkQgRUMgUFJJVkFURSBLRVktLS0tLQo=", "Visibility": "tenant", "Tenant": "default_tenant", "IsHiddenValue": false } ]}
- Edit the IP address in the
flask-bp-inputs.yaml
file if required. - Use the Create a list of secrets API. For more information about APIs, see the Dell Telecom Infrastructure Automation Suite API Guides.